Allow vold to mount on top of /data/media. For performance reasons, we want to bind-mount parts of the lower filesystem on top of /data/media. Bug: 137890172 Test: No denials when mounting Change-Id: Ide8fc07cdeb6a6816585af1582bee69bc68043af

commit: 313cff7687189df5c434327174f385ffa492faa3 [log] [tgz]
author: Martijn Coenen <maco@google.com> Mon Nov 18 13:34:19 2019 +0100
committer: Martijn Coenen <maco@google.com> Fri Nov 22 16:02:07 2019 +0100
tree: 3aed9ebf71c1bfffe5f179f133fa0284c463addc
parent: 357eb193e91884c7ed9e43753f9b08156cd7c515 [diff]
diff --git a/public/vold.te b/public/vold.te
index 9e68d65..59560be 100644
--- a/public/vold.te
+++ b/public/vold.te

@@ -92,6 +92,8 @@
 # Access to storage that backs emulated FUSE daemons for migration optimization
 allow vold media_rw_data_file:dir create_dir_perms;
 allow vold media_rw_data_file:file create_file_perms;
+# Allow mounting (lower filesystem) on parts of media for performance
+allow vold media_rw_data_file:dir mounton;
 
 # Allow mounting of storage devices
 allow vold { mnt_media_rw_stub_file storage_stub_file }:dir { mounton create rmdir getattr setattr };
commit	313cff7687189df5c434327174f385ffa492faa3	[log] [tgz]
author	Martijn Coenen <maco@google.com>	Mon Nov 18 13:34:19 2019 +0100
committer	Martijn Coenen <maco@google.com>	Fri Nov 22 16:02:07 2019 +0100
tree	3aed9ebf71c1bfffe5f179f133fa0284c463addc
parent	357eb193e91884c7ed9e43753f9b08156cd7c515 [diff]